Lucene search

Exploit for Deserialization of Untrusted Data in Apache Log4J

🗓️ 13 Dec 2021 12:11:30Type

Apache Log4j2 <=2.14.1 JNDI features vulnerability in deserialization of untrusted data, deploy via docker-compose or Podman

Reporter	Title	Published	Views	Family All 200
Tenable Nessus	FreeBSD : graylog -- include log4j patches (3fadd7e4-f8fb-45a0-a218-8fd6423c338f)	13 Dec 202100:00	–	nessus
Tenable Nessus	VMware vCenter Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028)	13 Dec 202100:00	–	nessus
Tenable Nessus	FreeBSD : OpenSearch -- Log4Shell (4b1ac5a3-5bd4-11ec-8602-589cfc007716)	13 Dec 202100:00	–	nessus
Tenable Nessus	Ubuntu 16.04 ESM : Apache Log4j 2 vulnerability (USN-5192-2)	17 Dec 202100:00	–	nessus
Tenable Nessus	VMware Horizon Log4Shell Direct Check (CVE-2021-44228) (VMSA-2021-0028)	7 Jan 202200:00	–	nessus
Tenable Nessus	Cisco SD-WAN vManage Log4j Remote Code Execution (cisco-sa-apache-log4j-qRuKNEbd)	16 May 202200:00	–	nessus
Tenable Nessus	Debian DLA-2842-1 : apache-log4j2 - LTS security update	13 Dec 202100:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : logback (openSUSE-SU-2021:1613-1)	25 Dec 202100:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : logback (openSUSE-SU-2021:4109-1)	18 Dec 202100:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : log4j (openSUSE-SU-2021:3999-1)	17 Dec 202100:00	–	nessus

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Dec 2021 12:30Current

10High risk

Vulners AI Score10

EPSS0.97112